Firestarter or equivalent?

Thomas Farrell info at mvcg.net
Thu Jun 3 21:00:35 PDT 2004 

Here is a snippet of a startup script I use for a BSD firewall nat box

/sbin/ipfw add divert natd all from any to any via rl0
dhcpd rl1 -q


The first line nats all traffic via interface rl0
The second line starts up a dhcpd server on the lan interface rl1. Of course
you'll need a /etc/dhcpd.conf   file. Mine looks like this


authoritative;
ddns-update-style none;
log-facility local7;

subnet 192.168.10.0 netmask 255.255.255.0 {
dynamic-dhcp range 192.168.10.2 192.168.10.254 {
option subnet-mask 255.255.255.0;
option domain-name "yourdomain.com";
option domain-name-servers 4.2.2.4,4.2.2.5,4.2.2.6;
option routers 192.168.10.1;
option dhcp-lease-time 14400;
option dhcp-renewal-time 7200;
option dhcp-rebinding-time 12600;
}
}


If you don't have dhcpd installed just go into this directory
/usr/ports/net/isc-dhcp3/  and type "make && make install"  you will have it
after this, provided the machine is connected to the internet.


good luck

Tom




----- Original Message -----
From: "Thomas Farrell" <info at mvcg.net>
To: <joordens at jeack.com.au>; <freebsd-questions at freebsd.org>
Sent: Thursday, June 03, 2004 11:38 PM
Subject: Re: Firestarter or equivalent?


> man ipfw
>
> kldstat
> kldload /boot/kernel/ipfw.ko
>
> Thats it !
>
> ----- Original Message -----
> From: "Ron & Ariane Joordens" <joordens at jeack.com.au>
> To: <freebsd-questions at freebsd.org>
> Sent: Friday, June 04, 2004 7:31 PM
> Subject: Firestarter or equivalent?
>
>
> >
> > Hello FreeBSDers,
> >
> > Two questions really.
> >
> > 1. I share my internet connection via a router running NAT only. ie. no
> SPI
> > firewall, etc. In this situation should each of the workstation
computers
> > run a personal firewall?
> >
> > 2. If yes, is there a FreeBSD port that is similar to Firestarter for
> > Linux? I have no firewall experience and am looking for the simplest way
> to
> > set one up
> >
> > Thanks for any help.
> >
> > Ron
> > http://www.jeack.com.au
> > _______________________________________________
> > freebsd-questions at freebsd.org mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
> >
> >
>
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
"freebsd-questions-unsubscribe at freebsd.org"
>
>

More information about the freebsd-questions mailing list